Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
260631	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

260632	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

260633	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251911	8.8	HIGH Network	librehealth	librehealth_ehr	LibreHealthIO LH-EHR version REL-2.0.0 contains an Authenticated Unrestricted File Write vulnerability in Import template that can result in write files with malicious content and may lead to remote …	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2018-1000646	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm

251912	6.5	MEDIUM Network	librehealth	librehealth_ehr	LibreHealthIO lh-ehr version <REL-2.0.0 contains an Authenticated Local File Disclosure vulnerability in Importing of templates allows local file disclosure that can result in Disclosure of sensitive…	CWE-200 Information Exposure	CVE-2018-1000645	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm

251913	10.0	CRITICAL Network	eclipse	rdf4j	Eclipse RDF4j version < 2.4.0 Milestone 2 contains a XML External Entity (XXE) vulnerability in RDF4j XML parser parsing RDF files that can result in the disclosure of confidential data, denial of se…	CWE-611 XXE	CVE-2018-1000644	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm

251914	6.1	MEDIUM Network	flightairmap	flightairmap	FlightAirMap version <=v1.0-beta.21 contains a Cross Site Scripting (XSS) vulnerability in GET variable used within registration sub menu page that can result in unauthorised actions and access to da…	CWE-79 Cross-site Scripting	CVE-2018-1000642	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm

251915	9.8	CRITICAL Network	yeswiki	yeswiki	YesWiki version <= cercopitheque beta 1 contains a PHP Object Injection vulnerability in Unserialising user entered parameter in i18n.inc.php that can result in execution of code, disclosure of infor…	CWE-502 Deserialization of Untrusted Data	CVE-2018-1000641	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm

251916	6.1	MEDIUM Network	villagedefrance	opencart-overclocked	OpenCart-Overclocked version <=1.11.1 contains a Cross Site Scripting (XSS) vulnerability in User input entered unsanitised within JS function in the template that can result in Unauthorised actions …	CWE-79 Cross-site Scripting	CVE-2018-1000640	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm

251917	9.6	CRITICAL Network	latexdraw_project	latexdraw	LatexDraw version <=4.0 contains a XML External Entity (XXE) vulnerability in SVG parsing functionality that can result in disclosure of data, server side request forgery, port scanning, possible rce…	CWE-611 XXE	CVE-2018-1000639	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm

251918	6.1	MEDIUM Network	1234n	minicms	MiniCMS version 1.1 contains a Cross Site Scripting (XSS) vulnerability in http://example.org/mc-admin/page.php?date={payload} that can result in code injection.	CWE-79 Cross-site Scripting	CVE-2018-1000638	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm

251919	7.8	HIGH Local	nongnu debian	zutils debian_linux	zutils version prior to version 1.8-pre2 contains a Buffer Overflow vulnerability in zcat that can result in Potential denial of service or arbitrary code execution. This attack appear to be exploita…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-1000637	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm

251920	6.7	MEDIUM Local	openmicroscopy	omero	The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains a Information Exposure Through Sent Data vulnerability in OMERO.server that can result in an Attacker gaining full adminis…	CWE-200 Information Exposure	CVE-2018-1000635	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm